» app.speedares.com
Overview
Analysis
IPs Addresses (3)
Downloads (6)
Network (216)

app.speedares.com

Domain Information

Server location:

Dublin City, Ireland (IE)

ASN:

AS16509 AMAZON-02 - Amazon.com, Inc.

Root domain:

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Installer.SweetIM.S, PUP.Adedge.AedgePerformanceBCNU.Installer (M), PUP.Adedge.AedgePer.Installer (M)

100.00%

Malwarebytes

PUP.Optional.SweetIM

16.67%

Norman

Suspicious_Gen4.DFVMF

16.67%

Trend Micro House Call

TROJ_GEN.F47V0304

16.67%

Comodo Security

Heur.Suspicious

16.67%

Dr.Web

Adware.SweetIM.2

16.67%

VIPRE Antivirus

Sweetpacks/SweetIM

16.67%

Boost by Reason

Optional.SweetIM.S

16.67%

The domain app.speedares.com has been seen to resolve to the following 3 IP addresses.

August 5, 2016

ec2-54-72-9-51.eu-west-1.compute.amazonaws.com

June 2, 2016

April 2, 2016

File downloads found at URLs served by app.speedares.com.

1 / 68 (Adware)

http://app.speedares.com/download.php?ul=es&eme=FPlw0r3FVo (speedares-setup.exe)

8 / 68 (Adware)

http://app.speedares.com/sweetimsetup_download.php (bundlesweetimsetup.exe)

1 / 68 (Adware)

http://app.speedares.com/download.php?ul=es&eme=FPlwA0r3FVo (speedares-setup.exe)

1 / 68 (Adware)

http://app.speedares.com/download.php?ul=es&eme=FPlw0r2D8J&par1=204485SC8DF8BDB8-3B0F-4911-8DFB-3950091E086F (speedares-setup.exe)

1 / 68 (Adware)

http://app.speedares.com/download.php?ul=fr&eme=FQWAA2cOFRg (speedares-setup.exe)

1 / 68 (Adware)

http://app.speedares.com/download.php?ul=es&eme=FPgeA0RdGCH (speedares-setup.exe)

The following 216 files have been seen to comunicate with app.speedares.com in live environments.

TCP » 54.72.9.51:80

toolbarupdaterservice.exe

TCP » 54.72.9.51:80

hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80

247843.ftf (Optimizer Pro v3.2 by PC Utilities Software Limited)

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

IEError.exe (IEError)

TCP » 54.72.9.51:80

install_flashplayer14x32_x64md_aaa_aih.exe (bon joueur)

TCP » 54.72.9.51:80

optimizerproinstaller.exe (Optimizer Pro v3.2 by PCUtilities Software Limited)

TCP » 54.72.9.51:80

charles.exe (by Apple)

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

IEError.exe (IEError)

TCP » 54.72.9.51:80

updater27793.exe (CouponDropDown Plugin by Innovative Apps)

TCP » 54.72.9.51:80

install_flashplayer16x33_masp_aaa_aih.exe (by Apple)

TCP » 54.72.9.51:80

toolbarupdaterservice.exe

TCP » 54.72.9.51:80

hdnInstaller.exe (hdnInstaller)

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

TCP » 54.72.9.51:80

hqghumeaylnlf.exe (Optimizer Pro v3.2 by PC Utilities Software Limited)

Latest 20 of 220 files

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.